Category Archives: Active Directory

Active Directory On-premises User name did not match with their Office365 User name

If you connect your on-premises active directory toAzure Active Directory and force Directory synchronization then your local AD users account been replicated to Azure AD, user accounts in both the AD will be synch with 100 percentage and local On-premises user able connect Office365 their local user and domain login, some time you may … [Continue reading]

Can we Replace on-premise Domain Controller with Cloud-based Active Directory

If you are looking for cloud-based Active Directory as a replacement for on-premise domain controller, like Active Directory without on-premise domain controller, we have an Azure Active Directory is cloud-based identity and access management service hosted in Microsoft datacenter, If you are looking to get rid of physical Domain Controller then Virtual machine in Azure or AWS is an option … [Continue reading]

How to troubleshoot workstation Trust relationship issues on Domain

How Trust relationships affect the Computers?

Domain joined workstations and member servers are had a Trust relationship with Domain in order to authenticate, and reset the computer account password every 30 days by default, you will get the below error if any mismatch between computer password on workstation and on Domain controller

Also Read: Active Directory Replication failed with “Target [Continue reading]

Office 365 DirSync Error: Unable to update this object because of missing attributes

One of our reader has an issue with the Office 365 syncing with their on-premises active directory, getting below error while running DirSync, error is as follows

Unable to update this object because the following attributes associated with this object have values that may already be associated with another object in your local directory services

IdFix DirSync Error Remediation [Continue reading]

Replsummary showing unknown for largest delta on AD replication checks

Largest delta would report as unknown on Source DC while running Repadmin /replsummary for your Domain and Forest, since it’s showing unknown and didn’t see the replication delta value and unable to find the affected Destination DC, will describe how to find the Destination DC

Also Read: Force active directory replication

Why it’s reporting unknown?

Let’s say if the new … [Continue reading]

DNS Entry of Domain Controller are Resolving to Incorrect value

One of the Domain Controller DNS entries pointing to wrong IP Address (resolving with the wrong IP address) which is affected Active Directory authentication and other services. This is a unique issue which I have come across

It’s a single forest with multiple child domains as the architecture, when try to resolve one of the child Domain’s Domain Controller from … [Continue reading]

Active directory user attributes auditing using object Meta

On active directory auditing we want to know who, when and where the Active Directory Attributes are changed, like who removed the group from an Active directory user account, who changed the account description or any other Active directory object attribute changes

All Active directory object changes are stored in object Meta and can be viewed through repadmin command, it’s … [Continue reading]

How secure channel determine the Domain controller in cross-forest

How client computer/member server find the logon Domain Controller from Cress Fores in an Active Directory envirnment or How secure channel determine the Domain controller in cross-forest

If you are worked on troubleshooting the authentication issues between forests, you might be used NLTEST tool to check the secure channel Domain controller, did you ever try to know how the domain … [Continue reading]